General

  • Target

    JaffaCakes118_5d31893bbea83752cdb83021c6de3ca9

  • Size

    563KB

  • Sample

    250115-vr3clsyqas

  • MD5

    5d31893bbea83752cdb83021c6de3ca9

  • SHA1

    aec6acdd6c9e1c9286e759c1f56fab6a6bae21a7

  • SHA256

    2a8d3b08195a3896d86c807c63bb548b4017c33a5f82e0666a0ed47cdf73bc00

  • SHA512

    362f28789d6467750c44e6390af2492735e3eb2119ebe092f1e52f8ab38257e41fe70b673ab69cf3d6fedaadb6eea47a7e183ebe9921bf74254b0c854ddf1482

  • SSDEEP

    12288:Pu7khwTTB2S3fmBWYjoRQWcljYxPXyTW4T0pmh0KJMMT2:P0kS1PmBWccSljYMTWE0pm3JMMT2

Malware Config

Targets

    • Target

      JaffaCakes118_5d31893bbea83752cdb83021c6de3ca9

    • Size

      563KB

    • MD5

      5d31893bbea83752cdb83021c6de3ca9

    • SHA1

      aec6acdd6c9e1c9286e759c1f56fab6a6bae21a7

    • SHA256

      2a8d3b08195a3896d86c807c63bb548b4017c33a5f82e0666a0ed47cdf73bc00

    • SHA512

      362f28789d6467750c44e6390af2492735e3eb2119ebe092f1e52f8ab38257e41fe70b673ab69cf3d6fedaadb6eea47a7e183ebe9921bf74254b0c854ddf1482

    • SSDEEP

      12288:Pu7khwTTB2S3fmBWYjoRQWcljYxPXyTW4T0pmh0KJMMT2:P0kS1PmBWccSljYMTWE0pm3JMMT2

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks